Auditing, Assessing, Analyzing: A Prioritized Approach using the Pareto Principle

CIS applies the Pareto Principle to cybersecurity in order to develop the CIS Controls.

Overview

In an ever-growing mix of hundreds of potential cybersecurity concerns and even more proposed solutions, CIS applies the Pareto Principle – the concept that for many activities, roughly 80% of the effects come from 20% of the causes– to help prioritize cybersecurity actions.

The information we track while users are on our website is incorporated into improved services and analysis of our site’s performance and traffic; this may be combined with other information that you have provided. To learn more please see our Privacy Policy.